PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-62221 OpenClaw CVE debrief

OpenClaw 2026.5.12 before 2026.5.26 contain an incorrect authorization vulnerability in the ClickClack allowFrom feature. When the affected feature is enabled and reachable, a lower-trust caller or configured input path could execute or persist actions beyond the caller's intended authorization, including running non-allowlisted commands. This vulnerability has a CVSS score of 2.3 and is rated as LOW. The vulnerability exists due to incorrect authorization checks in the ClickClack allowFrom feature.

Vendor
OpenClaw
Product
Unknown
CVSS
LOW 2.3
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-17
Original CVE updated
2026-07-17
Advisory published
2026-07-17
Advisory updated
2026-07-17

Who should care

Users of OpenClaw 2026.5.12 before 2026.5.26 should review and update their installations to prevent potential authorization bypass. This includes verifying that the ClickClack allowFrom feature is not enabled or is properly configured. Security teams and operators managing OpenClaw deployments should prioritize this update.

Technical summary

The vulnerability exists in the ClickClack allowFrom feature of OpenClaw 2026.5.12 before 2026.5.26. A lower-trust caller or configured input path could execute or persist actions beyond the caller's intended authorization, including running non-allowlisted commands. This issue arises from inadequate authorization checks within the feature, potentially allowing unintended actions. The CVSS score for this vulnerability is 2.3, and the severity is rated as LOW. Users should verify their installations and configurations to prevent potential authorization bypass. Security teams should review and update OpenClaw deployments, ensuring the ClickClack allowFrom feature is properly configured or disabled. This includes checking for exposed systems, prioritizing their remediation, and implementing compensating controls where necessary.

Defensive priority

Low priority, as the CVSS score is 2.3 and the severity is LOW.

Recommended defensive actions

  • Review and update OpenClaw installations to version 2026.5.26 or later
  • Verify that the ClickClack allowFrom feature is not enabled or is properly configured
  • Monitor for potential unauthorized actions
  • Perform a thorough review of current configurations and deployments
  • Check for any exposed systems and prioritize their remediation
  • Inventory affected assets for additional monitoring and protection
  • Implement compensating controls for exposed systems while remediation is scheduled

Evidence notes

The CVE record was published on 2026-07-17T02:18:09.133Z and has not been modified since then. The NVD entry is currently in the 'Received' status. The OpenClaw 2026.5.12 before 2026.5.26 versions are confirmed vulnerable. Users should verify their installations and configurations to prevent potential authorization bypass.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-17T02:18:09.133Z and has not been modified since then. The NVD entry is currently in the 'Received' status.